1 results (0.001 seconds)
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 1

CVE-2012-6140
https://notcve.org/view.php?id=CVE-2012-6140
24 Apr 2013 — pam_google_authenticator.c in the PAM module in Google Authenticator before 1.0 requires user-readable permissions for the secret file, which allows local users to bypass intended access restrictions and discover a shared secret via standard filesystem operations, a different vulnerability than CVE-2013-0258. pam_google_authenticator.c en el módulo PAM de Google Authenticator antes v1.0 requiere permisos legibles por el usuario para el archivo secreto, que permite a usuarios locales eludir restricciones de ... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666129 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •